Back to bug 1386564
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-10-19 09:37:23 UTC | Blocks | 1386598 | |
| Adam Mariš | 2016-10-19 09:47:17 UTC | Depends On | 1386607 | |
| Adam Mariš | 2016-10-19 09:47:28 UTC | Depends On | 1386608 | |
| Adam Mariš | 2016-10-19 09:47:41 UTC | Depends On | 1386609 | |
| Andrej Nemec | 2016-11-02 08:57:44 UTC | CC | anemec | |
| Tomas Hoger | 2016-11-03 22:13:44 UTC | Priority | high | medium |
| Blocks | 1375204 | |||
| Summary | CVE-2016-5617 mysql: unspecified vulnerability in subcomponent: Server: Error Handling (CPU October 2016) | CVE-2016-6664 CVE-2016-5617 mysql: unspecified vulnerability in subcomponent: Server: Error Handling (CPU October 2016) | ||
| Alias | CVE-2016-6664 | |||
| Whiteboard | impact=important,public=20161019,reported=20161019,source=internet,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=new,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=affected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=new,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=affected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected | ||
| Severity | high | medium | ||
| Tomas Hoger | 2016-11-07 12:38:00 UTC | Whiteboard | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=new,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=affected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=new,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected |
| Tomas Hoger | 2016-11-08 13:11:02 UTC | Doc Text | A flaw was found in the way the mysqld_safe script handled creation of error log file. The mysql operating system user could use this flaw to escalate their privileges to root. | |
| Summary | CVE-2016-6664 CVE-2016-5617 mysql: unspecified vulnerability in subcomponent: Server: Error Handling (CPU October 2016) | CVE-2016-6664 CVE-2016-5617 mysql: insecure error log file handling in mysqld_safe (CPU Oct 2016) | ||
| Whiteboard | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=4.4/AV:L/AC:M/Au:N/C:P/I:P/A:P,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=new,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=6.8/AV:L/AC:L/Au:S/C:C/I:C/A:C,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=new,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected | ||
| Tomas Hoger | 2016-11-09 09:58:24 UTC | Whiteboard | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=6.8/AV:L/AC:L/Au:S/C:C/I:C/A:C,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=new,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=6.8/AV:L/AC:L/Au:S/C:C/I:C/A:C,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=wontfix,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected |
| Tomas Hoger | 2016-11-10 22:15:01 UTC | Comment 11 is private | 1 | 0 |
| John Skeoch | 2016-12-01 01:00:36 UTC | CC | jdornak | |
| Tomas Hoger | 2017-06-05 21:14:30 UTC | Depends On | 1458933 | |
| Tomas Hoger | 2017-06-20 20:55:46 UTC | Depends On | 1463417, 1463415, 1463418, 1463416 | |
| PnT Account Manager | 2018-01-31 00:05:18 UTC | CC | aortega | |
| errata-xmlrpc | 2018-03-21 13:58:34 UTC | Link ID | Red Hat Product Errata RHSA-2018:0574 | |
| Joshua Padman | 2018-04-06 12:14:04 UTC | CC | jjoyce, mburns, slinaber | |
| Summary | CVE-2016-6664 CVE-2016-5617 mysql: insecure error log file handling in mysqld_safe (CPU Oct 2016) | CVE-2016-5617 mysql: insecure error log file handling in mysqld_safe (CPU Oct 2016) | ||
| Whiteboard | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=6.8/AV:L/AC:L/Au:S/C:C/I:C/A:C,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=wontfix,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=affected,openstack-6/mariadb-galera=affected,openstack-7/mariadb-galera=affected,openstack-8/mariadb-galera=affected,openstack-9/mariadb-galera=affected,openstack-10/mariadb-galera=affected,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=6.8/AV:L/AC:L/Au:S/C:C/I:C/A:C,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=wontfix,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=wontfix,openstack-6/mariadb-galera=wontfix,openstack-7/mariadb-galera=wontfix,openstack-8/mariadb-galera=wontfix,openstack-9/mariadb-galera=wontfix,openstack-10/mariadb-galera=wontfix,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,openstack-11/mariadb-galera=wontfix,openstack-12/mariadb-galera=wontfix | ||
| PnT Account Manager | 2019-05-02 21:51:56 UTC | CC | anemec | |
| Product Security DevOps Team | 2019-06-08 03:00:28 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 03:00:28 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:58:49 UTC | Whiteboard | impact=moderate,public=20161019,reported=20161019,source=internet,cvss2=6.8/AV:L/AC:L/Au:S/C:C/I:C/A:C,cvss3=7.8/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H,rhel-5/mysql55-mysql=wontfix,rhel-6/mysql=wontfix,rhel-7/mariadb=affected,rhscl-2/mysql55-mysql=affected,rhscl-2/rh-mysql56-mysql=affected,rhscl-2/rh-mysql57-mysql=notaffected,rhscl-2/mariadb55-mariadb=affected,rhscl-2/rh-mariadb100-mariadb=affected,rhscl-2/rh-mariadb101-mariadb=affected,openstack-5/mariadb-galera=wontfix,openstack-6/mariadb-galera=wontfix,openstack-7/mariadb-galera=wontfix,openstack-8/mariadb-galera=wontfix,openstack-9/mariadb-galera=wontfix,openstack-10/mariadb-galera=wontfix,fedora-all/community-mysql=affected,fedora-all/mariadb=affected,fedora-all/mariadb-galera=affected,openstack-11/mariadb-galera=wontfix,openstack-12/mariadb-galera=wontfix |
Back to bug 1386564